WO2006113189A3 - Generation de cles racines - Google Patents

Generation de cles racines Download PDF

Info

Publication number
WO2006113189A3
WO2006113189A3 PCT/US2006/013195 US2006013195W WO2006113189A3 WO 2006113189 A3 WO2006113189 A3 WO 2006113189A3 US 2006013195 W US2006013195 W US 2006013195W WO 2006113189 A3 WO2006113189 A3 WO 2006113189A3
Authority
WO
WIPO (PCT)
Prior art keywords
key material
provisioning
determining
response
root keys
Prior art date
Application number
PCT/US2006/013195
Other languages
English (en)
Other versions
WO2006113189A2 (fr
Inventor
Sarvar Patel
Original Assignee
Lucent Technologies Inc
Sarvar Patel
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Lucent Technologies Inc, Sarvar Patel filed Critical Lucent Technologies Inc
Priority to JP2008507705A priority Critical patent/JP2008538482A/ja
Priority to EP06749589A priority patent/EP1872514A2/fr
Publication of WO2006113189A2 publication Critical patent/WO2006113189A2/fr
Publication of WO2006113189A3 publication Critical patent/WO2006113189A3/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • H04L9/0844Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/081Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying self-generating credentials, e.g. instead of receiving credentials from an authority or from another peer, the credentials are generated at the entity itself

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Telephone Function (AREA)

Abstract

La présente invention porte sur un procédé de génération d'un matériau clé pour authentifier une communication avec au moins une fonction d'application de réseau. Le procédé consiste à déterminer un premier matériau clé en réponse à une demande de clé d'amorçage et à déterminer un deuxième matériau clé en réponse à la détermination du premier matériau clé. Le deuxième matériau clé correspond à un troisième matériau clé qui est déterminé et fourni à au moins une fonction d'application de réseau en réponse à la détermination du premier matériau clé.
PCT/US2006/013195 2005-04-18 2006-04-10 Generation de cles racines WO2006113189A2 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
JP2008507705A JP2008538482A (ja) 2005-04-18 2006-04-10 ルート鍵の提供
EP06749589A EP1872514A2 (fr) 2005-04-18 2006-04-10 Generation de cles racines

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US11/108,609 US20060236116A1 (en) 2005-04-18 2005-04-18 Provisioning root keys
US11/108,609 2005-04-18

Publications (2)

Publication Number Publication Date
WO2006113189A2 WO2006113189A2 (fr) 2006-10-26
WO2006113189A3 true WO2006113189A3 (fr) 2006-12-07

Family

ID=36940333

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2006/013195 WO2006113189A2 (fr) 2005-04-18 2006-04-10 Generation de cles racines

Country Status (6)

Country Link
US (1) US20060236116A1 (fr)
EP (1) EP1872514A2 (fr)
JP (1) JP2008538482A (fr)
KR (1) KR20070122490A (fr)
CN (1) CN101160778A (fr)
WO (1) WO2006113189A2 (fr)

Families Citing this family (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1300976C (zh) * 2004-01-16 2007-02-14 华为技术有限公司 一种网络应用实体获取用户身份标识信息的方法
US7980947B2 (en) 2005-02-16 2011-07-19 Igt Flexible determination of progressive awards
JP4791535B2 (ja) * 2005-06-13 2011-10-12 ノキア コーポレイション 汎用ブートストラッピング・アーキテクチャ(gba)において、移動ノードの識別子を認証のプリファレンスと共に提供する装置、方法およびコンピュータ・プログラム
US7835528B2 (en) * 2005-09-26 2010-11-16 Nokia Corporation Method and apparatus for refreshing keys within a bootstrapping architecture
EP1955250A4 (fr) * 2005-10-21 2014-07-16 Nokia Corp Appareil, programme informatique et procede de reponse d'authentification securisee dans un terminal mobile
CN101366037A (zh) * 2005-12-05 2009-02-11 诺基亚公司 在移动终端中用于安全http摘要响应验证以及完整性保护的计算机程序产品、装置以及方法
CN101039181B (zh) * 2006-03-14 2010-09-08 华为技术有限公司 防止通用鉴权框架中服务功能实体受攻击的方法
US8539559B2 (en) * 2006-11-27 2013-09-17 Futurewei Technologies, Inc. System for using an authorization token to separate authentication and authorization services
US8099597B2 (en) * 2007-01-09 2012-01-17 Futurewei Technologies, Inc. Service authorization for distributed authentication and authorization servers
US7885640B2 (en) * 2007-01-11 2011-02-08 Nokia Corporation Authentication in communication networks
CN101227458B (zh) * 2007-01-16 2011-11-23 华为技术有限公司 移动ip系统及更新家乡代理根密钥的方法
US8285990B2 (en) * 2007-05-14 2012-10-09 Future Wei Technologies, Inc. Method and system for authentication confirmation using extensible authentication protocol
US8096874B2 (en) 2007-09-27 2012-01-17 Igt Gaming system and method having progressive awards with meter increase events
US8197337B2 (en) 2007-10-29 2012-06-12 Igt Gaming system and method for providing multi-level personal progressive awards
US8340288B2 (en) * 2008-06-06 2012-12-25 Telefonaktiebolaget Lm Ericsson (Publ) Cryptographic key generation
CN101499908B (zh) * 2009-03-20 2011-06-22 四川长虹电器股份有限公司 一种身份认证及共享密钥产生方法
WO2011070226A1 (fr) 2009-12-11 2011-06-16 Nokia Corporation Profil de caractéristique de sécurité de carte à puce dans un serveur d'abonné résidentiel
KR20140037276A (ko) * 2011-03-23 2014-03-26 인터디지탈 패튼 홀딩스, 인크 네트워크 통신 보호 시스템 및 방법
US8650622B2 (en) * 2011-07-01 2014-02-11 Telefonaktiebolaget Lm Ericsson (Publ) Methods and arrangements for authorizing and authentication interworking
US10044713B2 (en) 2011-08-19 2018-08-07 Interdigital Patent Holdings, Inc. OpenID/local openID security
US9342956B2 (en) 2012-02-24 2016-05-17 Igt Gaming system, gaming device and method for shifting progressive award contribution rates
CN103490887B (zh) 2012-06-14 2017-06-13 中兴通讯股份有限公司 一种网络设备及其认证和密钥管理方法
JP6824037B2 (ja) * 2013-10-24 2021-02-03 コニンクリーケ・ケイピーエヌ・ナムローゼ・フェンノートシャップ ユーザ装置間での制御された証明書の供給
EP3761690B1 (fr) * 2013-10-30 2023-08-23 NEC Corporation Appareil, système et procédé de communication directe sécurisée dans des services reposant sur la proximité
WO2020094475A1 (fr) * 2018-11-05 2020-05-14 Telefonaktiebolaget Lm Ericsson (Publ) Accord d'authentification et de chiffrement pour dispositif terminal
JP7437405B2 (ja) * 2019-01-14 2024-02-22 テレフオンアクチーボラゲット エルエム エリクソン(パブル) セキュリティのための方法および装置

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004034205A2 (fr) * 2002-10-08 2004-04-22 Koolspan Acces reseau auto-gere, par la gestion d'acces localise

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100479260B1 (ko) * 2002-10-11 2005-03-31 한국전자통신연구원 무선 데이터의 암호 및 복호 방법과 그 장치
GB0326265D0 (en) * 2003-11-11 2003-12-17 Nokia Corp Shared secret usage for bootstrapping

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004034205A2 (fr) * 2002-10-08 2004-04-22 Koolspan Acces reseau auto-gere, par la gestion d'acces localise

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
"Universal Mobile Telecommunications System (UMTS); Generic Authentication Architecture (GAA); Generic bootstrapping architecture (3GPP TS 33.220 version 6.3.0 Release 6); ETSI TS 133 220", ETSI STANDARDS, EUROPEAN TELECOMMUNICATIONS STANDARDS INSTITUTE, SOPHIA-ANTIPO, FR, vol. 3-SA3, no. V630, December 2004 (2004-12-01), XP014028221, ISSN: 0000-0001 *
MENEZES A J ET AL: "Handbook of Applied Cryptography, key establishment protocols", HANDBOOK OF APPLIED CRYPTOGRAPHY, CRC PRESS SERIES ON DISCRETE MATHEMATICES AND ITS APPLICATIONS, BOCA RATON, FL, CRC PRESS, US, 1997, pages 489 - 508, XP002283799, ISBN: 0-8493-8523-7 *

Also Published As

Publication number Publication date
EP1872514A2 (fr) 2008-01-02
WO2006113189A2 (fr) 2006-10-26
KR20070122490A (ko) 2007-12-31
JP2008538482A (ja) 2008-10-23
CN101160778A (zh) 2008-04-09
US20060236116A1 (en) 2006-10-19

Similar Documents

Publication Publication Date Title
WO2006113189A3 (fr) Generation de cles racines
WO2007002691A3 (fr) Systeme de gestion automatisee de cles
WO2008127430A3 (fr) Accès sécurisé à une ressource restreinte
WO2007102907A3 (fr) Systeme de certification et de fractionnement pour remplacer des cles crypthographiques
WO2009088615A3 (fr) Autorisation sélective basée sur des attributs d'entrée d'authentification
WO2008105836A3 (fr) Génération de clé secrète à l'échelon d'un groupe
WO2006076382A3 (fr) Procede et appareil fournissant une revocation a base de politique de justificatifs d'identite de securite de reseau
WO2007143226A3 (fr) Génération d'un graphe d'attaque à pré-requis multiples
MY149495A (en) Authenticating an application
WO2006005047A3 (fr) Systeme et procede de consolidation, de securisation et d'automatisation de l'acces hors-bande a des noeuds dans un reseau de donnees
WO2001071460A3 (fr) Ameliorations dans et en relation avec un procede et un systeme de verification de numero d'authentification, procede correspondant et systeme de communication
WO2007136508A3 (fr) Techniques de protection de la sécurité dans un réseau sans fil par commutation de modes
WO2006128481A3 (fr) Procede d'autoconfiguration d'une adresse de terminal reseau
WO2007113734A3 (fr) Établissement de niveau de sécurité dans une architecture d'amorçage générique
WO2007115209A3 (fr) Cadre d'applications de gestion d'identité et d'accès
WO2007072320A3 (fr) Methode d'evaluation d'une adresse reseau et d'acces a une adresse reseau
WO2004111761A3 (fr) Configuration d'un dispositif sans fil basee sur une identite
WO2009076092A3 (fr) Interface utilisateur à distance pour un réseau d'appareil
WO2004090693A3 (fr) Procedes et systemes pour determiner l'integrite de reseau et ameliorer la disponibilite de reseau
WO2006113206B1 (fr) Obtention de nouvelles cles de session
WO2009031112A3 (fr) NœUD POUR RÉSEAU ET PROCÉDÉ D'ÉTABLISSEMENT D'UNE ARCHITECTURE DE SÉCURITÉ DISTRIBUÉE POUR RÉSEAU
WO2006113885A3 (fr) Appareil et procede d'identification d'un reseau parmi de multiples applications
WO2008073176A3 (fr) Superposition intelligente fournissant une communication dynamique securisee entre des points dans un reseau
WO2006115655A3 (fr) Lien entre authentification sous exploration de fonctionnalite de materiel et operation de diffie hellman par le biais d'une valeur de depart (« seed »)
WO2009029436A3 (fr) Structure de gel polymère et procédé de production associé

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200680012746.8

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2006749589

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 4496/CHENP/2007

Country of ref document: IN

WWE Wipo information: entry into national phase

Ref document number: 1020077023859

Country of ref document: KR

ENP Entry into the national phase

Ref document number: 2008507705

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU